Extracted

• • Target

    JaffaCakes118_7f0d6abf6655fd2a45a14539101d0b50

  • Size

    167KB

  • MD5

    7f0d6abf6655fd2a45a14539101d0b50

  • SHA1

    314fe06fc34e8931f716be14bb37df366a302029

  • SHA256

    06a3cd456a7d364a0d0af8010eacff7b8a22bda9fdc873126dea29938499b93f

  • SHA512

    5a8bca7ccf218141bfe460d012028a3364fec2f22a3b962dfe9bb98641c744005b2ad85db7842a1fe252ad69d9c43d5860c2ff76ec35a25471d5c5575bd8ae49

  • SSDEEP

    3072:uYNQKPWDyBRefVJltZrpRl1P3wOpfoE/dJqv77m7zPSQb2Fc:3NSDyBRO1thp+WwQda7m7zPSQL

  Score

  10^/10

  discoverysalitybackdoordefense_evasiontrojanupx

  • Sality

    Sality is backdoor written in C++, first discovered in 2003.

    backdoorsality

  • Sality family

    sality

  • UAC bypass

    defense_evasiontrojan

  • Checks whether UAC is enabled

    defense_evasiontrojan

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2